snazy commented on issue #2173: URL: https://github.com/apache/polaris/issues/2173#issuecomment-3163233184
It's quite a difference if an official guide asks users to store plain text credentials into easily accessible text files or whether someone does it on its own. There have been too many exploits in various pieces of software in the past that could access the file system and send data. Again: I do think it's *not* a good *advice*. PS: `chmod` isn't helpful. There's a reason why e.g. even SSH private keys in `~/.ssh/` should be protected _beyond_ `chmod 600`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
